Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
File: 1kBlpUFdmUI5AUXyJHkB2TZFidc.mft (raw, json)
Hash identifier: 2I+j/W1I1sRsOCpGx90AE/r+9/KdMXAsbuCtCup9xvU=
Subject key identifier: 4C:04:84:37:F0:51:A9:59:00:94:6A:5F:B1:1A:BE:8D:97:A1:39:26
Authority key identifier: D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
Certificate issuer: /CN=d64065a5415d9942390145f2247901d9364589d7
Certificate serial: 018F430D8A59B0EC3867A272FB2B8061BDA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
Manifest number: 0628
Signing time: Sat 04 May 2024 10:01:51 +0000
Manifest this update: Sat 04 May 2024 10:01:51 +0000
Manifest next update: Sun 05 May 2024 10:01:51 +0000
Files and hashes: 1: 1kBlpUFdmUI5AUXyJHkB2TZFidc.crl (hash: VgduHq0oo1pg7I+O1MSUzzRKchOKqVVhqBLSriLITkU=)
2: Yty59qPHmnMYtfYDQwPZn9nnuT4.roa (hash: PBqBbRA0M5rZsHqwhx1SfcEYouNde0+lwmzOku6g6+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:43:0d:8a:59:b0:ec:38:67:a2:72:fb:2b:80:61:bd:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d64065a5415d9942390145f2247901d9364589d7
Validity
Not Before: May 4 10:01:51 2024 GMT
Not After : May 5 10:01:51 2024 GMT
Subject: CN=4c048437f051a95900946a5fb11abe8d97a13926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1a:7f:22:f3:f2:5a:a6:43:f2:f1:c7:05:ec:
9d:b5:f4:79:d3:9e:df:21:19:00:fa:30:b4:d1:04:
59:89:b9:8a:3b:3e:c0:71:23:07:c8:7b:01:e7:10:
f2:60:c8:6b:82:24:7f:89:0d:35:13:85:cc:72:a6:
83:b2:9e:52:13:23:66:69:c4:44:47:19:87:75:bb:
e2:05:47:c1:62:9c:2b:b2:55:25:42:7f:86:ea:bd:
41:e0:85:7a:b7:f6:88:a1:cf:cc:fc:04:15:05:6f:
44:e9:b3:3c:aa:ad:d9:6a:7e:1c:75:86:1b:a5:f1:
1d:02:88:c0:41:b7:da:fb:d2:05:10:cd:17:c4:e5:
44:8c:27:5c:9b:3e:2a:bf:8f:da:7b:d0:a4:d4:a6:
a1:f8:c7:64:08:2c:62:5b:eb:64:95:ac:1e:e2:46:
c2:5d:2d:3a:c9:a9:fa:91:33:ae:a5:af:61:40:f1:
8f:8f:37:13:5d:df:bf:62:9f:33:48:23:99:6f:b9:
b1:fe:bb:31:64:83:94:2b:50:f8:2b:52:4f:e7:96:
2f:6c:96:90:65:94:bb:11:c4:b9:30:a8:e6:00:a7:
c9:ad:b7:d5:ea:4e:ec:b7:72:10:87:5e:21:76:af:
b7:e8:4f:7b:04:91:06:69:de:c9:95:40:49:b3:c9:
63:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:04:84:37:F0:51:A9:59:00:94:6A:5F:B1:1A:BE:8D:97:A1:39:26
X509v3 Authority Key Identifier:
keyid:D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:cf:3c:0d:2c:2c:c8:67:43:6c:cf:55:a4:61:85:36:46:01:
c1:31:35:3f:1c:15:d8:60:8f:86:81:7d:68:99:13:8f:60:09:
ba:86:c8:a7:b4:6f:2c:14:82:2b:55:51:00:ef:9c:52:16:db:
9c:97:ac:b7:4d:21:47:ac:84:b8:96:d8:1c:07:10:60:0e:9f:
85:cf:21:35:8f:55:cb:bb:d4:21:f3:58:9b:5f:ce:9a:22:25:
19:1d:e9:bc:4d:ed:74:13:f5:fa:80:9b:66:be:20:8d:b2:92:
63:3e:e1:6e:d4:ee:05:5d:e7:fd:43:08:d3:59:af:f1:c9:ca:
5d:ba:8e:28:9f:c0:14:ea:c0:a6:df:54:66:a3:6a:f4:ed:88:
77:ce:11:74:8d:1a:db:f7:d7:08:21:35:d5:9b:6d:fd:b5:85:
57:c4:59:f2:ec:3f:12:36:ed:d1:4b:05:c3:e5:7b:f3:b6:b0:
7d:ac:72:94:cf:74:53:33:8b:3d:6a:f8:a5:f2:32:c1:4f:ca:
fe:46:70:0c:f2:62:8c:9f:a8:f9:3e:d8:f3:39:f2:cb:0f:4f:
a6:c1:3c:93:e9:d3:08:7c:d3:32:cc:b0:62:d6:a0:75:fb:eb:
ed:5b:bb:27:fc:81:c5:8b:c5:c6:2c:e8:20:55:03:30:24:bf:
03:a2:13:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:34:42 2024 by rpki-client on console-fra.rpki-client.org